GOOGLE has managed to keep the lid on a serious bug in Gmail that had enabled hackers to take over accounts, read the contents and use them to send spam, since the service started.
The bug was reported by Anelkaos, colaborator of elhacker.net's forum and patched by Google by October 18, however no-one really knew how serious it was until these guys published how it could be exploited
If
the page speaks true, Gmail was wide open.
The bug didn't require the hackers to nick cookies or do that much. There is no evidence that it was ever used, but then if the hack was carried out according to these instructions the user would never know unless a lot of spam was sent from their address.
Related Links:
Google Gmail had a serious bug, claim
Author: Nick Farrell
Home
Current issue